CIRCL CVE Search
App Vendor: CIRCL
App Category: Data Enrichment & Threat Intelligence
Connector Version: 1.0.1
API Version: 1.0.0
About App
The CIRCL CVE Search app allows security teams to integrate with the CIRCL CVE Search enterprise application. It is an interface to publicly search known information from security vulnerabilities in software and hardware along with their corresponding exposures.
The CIRCL CVE Search app is configured with Orchestrate to perform the following actions:
Action Name | Description |
|---|---|
Fetch CVE Database Details | This action retrieves details of the CVE database. |
Fetch CVE ID Details | This action retrieves details of a CVE ID. |
Fetch Latest CVE Feeds | This action retrieves the latest CVE feeds. |
Fetch Product CVE Details | This action retrieves details of a product CVE. |
Fetch Vendor Product Details | This action retrieves details of a vendor's product. |
Query Details of a CPE ID | This action queries details of a common platform enumeration (CPE ID) from CIRCL CVE Search. |
Configuration Parameters
The following configuration parameters are required for the CIRCL CVE Search app to communicate with the CIRCL CVE Search enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Base URL | Enter the base URL. Example: "http://cve.circl.lu" | Text | Optional | |
TLS Verification | Choose to verify the TLS certificate. | Boolean | Optional | Allowed boolean values:
Default value: true |
Action: Fetch CVE Database Details
This action retrieves details of the CVE database.
Action Input Parameters
This action does not require any input parameter.
Action: Fetch CVE ID Details
This action retrieves details of a CVE ID.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
CVE ID | Enter the CVE ID. Example: "CVE-2020-36557" | Text | Required |
Example Request
[
{
"cve_id": "CVE-2020-36557"
}
]Action: Fetch the Latest CVE Feeds
This action retrieves the latest CVE feeds.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Maximum Feed | Enter the maximum allowed feed. Example: "30" | Text | Optional |
Example Request
[
{
"max_feed": "30"
}
] Action: Fetch Product CVE Details
This action retrieves details of a product CVE.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Vendor Product | Enter the vendor's product name. Example: "microsoft office suite" | Text | Required | To run this action successfully, use this API in a local version of CVE Search. |
Example Request
[
{
"vendor_product": "microsoft"
}
]Action: Fetch Vendor Product Details
This action retrieves details of a vendor's product.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Vendor | Enter the vendor's name. Example: "microsoft" | Text | Optional |
|
Example Request
[
{
"vendor": "Microsoft"
}
]Action: Query Details of a CPE ID
This action queries details of a common platform enumeration (CPE ID) from CIRCL CVE Search.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
CPE ID | Enter the CPE ID and product name. Example: "cpe:/a:microsoft:office:2011::mac" | Text | Required | To run this action successfully, use this API in a local version of CVE Search. |
Example Request
[
{
"cpe_id": "cpe:/a:microsoft:office:2011::mac"
}
]